Closed Bug 1312663 Opened 9 years ago Closed 9 years ago

Make TLS group selection more robust

Tracking

(Not tracked)

Status:

RESOLVED FIXED

Milestone:

3.28

People

(Reporter: franziskus, Assigned: franziskus)

Details

Franziskus Kiefer [:franziskus]

Assignee

Description

•

9 years ago

There are issues with TLS group selection. This bug fixes the following: * assume that null entries in ss->namedGroupPreferences indicate a disabled group * don't enable DH groups if the client doesn't indicate support in 1.3 * don't disable DHE cipher suites on the client when no FF group is enabled (< 1.3)

Franziskus Kiefer [:franziskus]

Assignee

Comment 1

•

9 years ago

review at https://nss-dev.phacility.com/D112 landed as https://hg.mozilla.org/projects/nss/rev/50192c00d18c7956d8085070b6a3899197d7ca46

Status: NEW → RESOLVED

Closed: 9 years ago

Resolution: --- → FIXED

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Make TLS group selection more robust

Categories

(NSS :: Libraries, defect)

Tracking

(Not tracked)

People

(Reporter: franziskus, Assigned: franziskus)

References

Details

Crash Data

Security

(public)

User Story

Description

Comment 1